GLSA-200903-34 : Amarok: User-assisted execution of arbitrary code

The remote Gentoo host is missing one or more security-related
patches.

Description :

The remote host is affected by the vulnerability described in GLSA-200903-34
(Amarok: User-assisted execution of arbitrary code)

Tobias Klein has discovered multiple vulnerabilities in Amarok:
Multiple integer overflows in the Audible::Tag::readTag()
function in metadata/audible/audibletag.cpp trigger heap-based buffer
overflows (CVE-2009-0135).
Multiple array index errors in the
Audible::Tag::readTag() function in metadata/audible/audibletag.cpp can
lead to invalid pointer dereferences, or the writing of a 0x00 byte to
an arbitrary memory location after an allocation failure
(CVE-2009-0136).

Impact :

A remote attacker could entice a user to open a specially crafted
Audible Audio (.aa) file with a large 'nlen' or 'vlen' tag value to
execute arbitrary code or cause a Denial of Service.

Contact

The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.